Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D731CB34B4A511F0AEEE3AD0DAE4EC9C.roa
File: D731CB34B4A511F0AEEE3AD0DAE4EC9C.roa (raw, json)
Hash identifier: 50kMlpir5gexGhtCA9BFnPsnAC1Ubx9y5PrN9EsKmeA=
Subject key identifier: DD:60:DD:AA:2B:F5:23:C4:AD:B7:E0:D3:87:90:8D:E2:D5:1F:29:42
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0183A2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D731CB34B4A511F0AEEE3AD0DAE4EC9C.roa
Signing time: Wed 29 Oct 2025 09:01:22 +0000
ROA not before: Wed 29 Oct 2025 09:01:15 +0000
ROA not after: Tue 02 Dec 2025 09:01:15 +0000
asID: 214016
IP address blocks: 156.225.42.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Nov 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99234 (0x183a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 29 09:01:15 2025 GMT
Not After : Dec 2 09:01:15 2025 GMT
Subject: CN=6901d7e2-3a8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b7:8a:a6:c4:42:b4:d4:d1:e5:1c:ce:34:0a:
3d:21:86:71:15:54:70:50:73:51:58:2a:1e:f0:a4:
3f:76:3f:b0:22:c9:7f:95:5e:5d:03:6b:01:48:2c:
32:3b:58:fe:a2:d5:25:e1:17:05:64:b9:f7:4b:c3:
b4:97:ce:65:1f:04:97:42:31:80:4f:f1:1b:c7:d1:
e2:0f:e4:8d:f0:99:f1:2f:13:cb:1a:20:54:51:c5:
d9:65:dc:b6:95:3c:90:75:f6:dd:c0:a9:7e:66:ea:
2d:1b:22:21:7f:d0:cf:1f:2c:18:aa:29:84:b1:c3:
fd:40:f5:3d:e6:0f:c3:8d:6a:09:7d:2a:6c:f9:4b:
04:0d:7b:12:d0:b4:6f:84:fb:58:23:9f:ed:80:7d:
8a:be:2b:3a:7d:ec:29:c0:ca:89:b9:c9:58:41:9b:
45:94:7d:41:91:8c:ca:8b:65:1f:46:be:b9:aa:78:
cc:2f:f6:ef:fb:a6:28:3d:8a:26:a7:fd:b0:40:06:
fd:9d:3f:1f:0c:7f:0a:3a:7a:b7:6f:3f:73:71:e0:
f0:21:cb:c3:2f:76:79:d4:e2:f2:f7:59:f5:43:6d:
3c:c8:4d:ec:c9:ea:5d:99:ff:1c:74:bd:5f:4c:96:
40:2f:0b:61:11:fd:ac:2e:18:49:2a:02:bc:1d:3c:
d5:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:60:DD:AA:2B:F5:23:C4:AD:B7:E0:D3:87:90:8D:E2:D5:1F:29:42
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D731CB34B4A511F0AEEE3AD0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.42.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:b1:12:0b:ba:a6:e7:cd:b2:43:0a:91:4f:80:cc:6b:8c:38:
bf:78:44:c2:5f:6c:70:d6:c6:86:78:70:ad:f9:03:5a:92:2d:
f4:3b:d4:01:cd:cd:c1:be:3e:e9:82:da:9b:ad:9f:ff:99:7b:
d6:5c:2d:a7:45:e2:35:ce:15:71:9a:63:18:70:90:31:84:ba:
73:26:b0:1a:f4:cd:47:f0:85:ec:74:40:b0:9c:be:ce:6a:7e:
9a:c9:2a:db:c6:7f:4d:ae:32:93:81:ce:93:23:26:ef:6a:60:
21:bf:b5:de:91:fe:4d:8c:33:7a:29:6c:65:cf:02:17:2a:18:
18:e0:7e:1b:a2:46:aa:a0:a3:0e:62:b8:5c:42:e1:89:30:34:
6e:9b:e4:0b:45:58:ab:d0:44:b7:47:7f:16:9d:ac:07:9b:cc:
96:91:82:5d:78:3b:8b:31:24:cb:e6:5f:db:78:b2:2c:a5:01:
59:09:eb:5a:7d:05:a5:39:c2:8f:7f:84:aa:77:b0:7d:c0:5a:
c9:8c:16:49:53:f4:8a:82:83:24:87:a6:e6:00:96:51:3e:f6:
4f:59:1c:47:2d:1f:13:70:10:d6:0b:35:c7:57:84:5b:92:20:
e9:46:b8:a1:22:d1:bd:1d:d2:81:5a:ba:0a:d6:58:27:4f:3c:
74:08:82:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 13:41:19 2025 by rpki-client